意外发现 MT 3.33 推出有一个 security update ？
The current status of our security update process:
* This is a mandatory update due to the severity of the combined vulnerabilities.
* These vulnerabilities were discovered by our own team during a routine security evaluation.
* There are currently no known malicious exploits targeting Movable Type for these issues.
* We will be disclosing full details of the vulnerabilities on our Professional Network blog in a couple of days allowing you to update in the meantime without incurring unnecessary risk.
从 这里 下了增量升级补丁，分析了半天也没有研究出来有什么安全漏洞？
估计问题是在 MT::Sanitize 了 MT::Log 里面。
By Easun 2006/09/27